/[gentoo-x86]/sys-kernel/hardened-sources/ChangeLog
Gentoo

Contents of /sys-kernel/hardened-sources/ChangeLog

Parent Directory Parent Directory | Revision Log Revision Log


Revision 1.91 - (hide annotations) (download)
Thu Apr 20 17:50:07 2006 UTC (8 years, 3 months ago) by johnm
Branch: MAIN
Changes since 1.90: +4 -1 lines
Turning on gpg-signing again, and recomitting
(Portage version: 2.1_pre9-r1)

1 method 1.1 # ChangeLog for sys-kernel/hardened-sources
2 solar 1.73 # Copyright 2000-2006 Gentoo Foundation; Distributed under the GPL v2
3 johnm 1.91 # $Header: /var/cvsroot/gentoo-x86/sys-kernel/hardened-sources/ChangeLog,v 1.90 2006/04/20 17:48:26 johnm Exp $
4    
5     20 Apr 2006; John Mylchreest <johnm@gentoo.org> ChangeLog:
6     Turning on gpg-signing again, and recomitting
7 johnm 1.90
8     *hardened-sources-2.6.16-r4 (20 Apr 2006)
9    
10     20 Apr 2006; John Mylchreest <johnm@gentoo.org>
11     -hardened-sources-2.6.16-r2.ebuild, -hardened-sources-2.6.16-r3.ebuild,
12     +hardened-sources-2.6.16-r4.ebuild:
13     Fix numerous security vulns
14 solar 1.89
15     *hardened-sources-2.4.32-r3 (16 Apr 2006)
16    
17     16 Apr 2006; <solar@gentoo.org> -hardened-sources-2.4.30-r1.ebuild,
18     -hardened-sources-2.4.31.ebuild, -hardened-sources-2.4.32-r1.ebuild,
19     +hardened-sources-2.4.32-r3.ebuild, -hardened-sources-2.4.32.ebuild:
20     - security bump for bug #112791. Removed old ebuilds
21 johnm 1.88
22     *hardened-sources-2.6.16-r3 (15 Apr 2006)
23    
24     15 Apr 2006; John Mylchreest <johnm@gentoo.org>
25     +hardened-sources-2.6.16-r3.ebuild:
26     Removing silly localversion which I missed
27 johnm 1.87
28     *hardened-sources-2.6.14-r7 (14 Apr 2006)
29    
30     14 Apr 2006; John Mylchreest <johnm@gentoo.org>
31     -hardened-sources-2.6.14-r5.ebuild, +hardened-sources-2.6.14-r7.ebuild:
32     Fixes CVE-2006-0744, CVE-2006-0744, CVE-2006-1522, CVE-2006-1242
33 johnm 1.86
34     *hardened-sources-2.6.16-r2 (13 Apr 2006)
35    
36     13 Apr 2006; John Mylchreest <johnm@gentoo.org>
37     -hardened-sources-2.6.16.ebuild, -hardened-sources-2.6.16-r1.ebuild,
38     +hardened-sources-2.6.16-r2.ebuild:
39     Removing vulnerable 2.6.16 kernels. Bumping grsec, re-enabling reiserfs sec
40     labels, dropping USERGROUP define fixes, since these were merged mainstream.
41 johnm 1.85
42     *hardened-sources-2.6.16-r1 (11 Apr 2006)
43    
44     11 Apr 2006; John Mylchreest <johnm@gentoo.org>
45     +hardened-sources-2.6.16-r1.ebuild:
46     Bumping to include ppc build fix and 2.6.16.3
47 tsunam 1.84
48     06 Apr 2006; Joshua Jackson <tsunam@gentoo.org>
49     hardened-sources-2.6.14-r6.ebuild:
50     Stable on x86; bug #127718
51 johnm 1.83
52     *hardened-sources-2.6.16 (31 Mar 2006)
53    
54     31 Mar 2006; John Mylchreest <johnm@gentoo.org>
55     +hardened-sources-2.6.16.ebuild:
56     Bumping to new version of grsec, and kernel base. New squashfs. Based on
57     2.6.16.1
58 cryos 1.82
59     30 Mar 2006; Marcus D. Hanwell <cryos@gentoo.org>
60     hardened-sources-2.6.14-r6.ebuild:
61     Stable on amd64, bug 127718.
62 nixnut 1.81
63     28 Mar 2006; <nixnut@gentoo.org> hardened-sources-2.6.14-r6.ebuild:
64     Stable on ppc. Bug #127718
65 johnm 1.80
66     15 Mar 2006; John Mylchreest <johnm@gentoo.org>
67     -hardened-sources-2.6.11-r15.ebuild, -hardened-sources-2.6.14-r3.ebuild,
68     -hardened-sources-2.6.14-r4.ebuild:
69     Cleanup.
70 johnm 1.79
71     *hardened-sources-2.6.14-r6 (15 Mar 2006)
72    
73     15 Mar 2006; John Mylchreest <johnm@gentoo.org>
74     +hardened-sources-2.6.14-r6.ebuild:
75     Fixes grsec policy recreation bug and adds a
76     >=sys-apps/gradm-2.1.8.200601212342-r1 depend.
77 solar 1.78
78     02 Mar 2006; <solar@gentoo.org> hardened-sources-2.4.32-r2.ebuild:
79     - stable on x86
80 hansmi 1.77
81     19 Feb 2006; Michael Hanselmann <hansmi@gentoo.org>
82     hardened-sources-2.6.14-r5.ebuild:
83     Stable on ppc.
84 johnm 1.76
85     *hardened-sources-2.6.14-r5 (01 Feb 2006)
86    
87     01 Feb 2006; John Mylchreest <johnm@gentoo.org>
88     +hardened-sources-2.6.14-r5.ebuild:
89     fixing every known exploit
90 solar 1.75
91     *hardened-sources-2.4.32-r2 (26 Jan 2006)
92    
93     26 Jan 2006; <solar@gentoo.org> hardened-sources-2.4.32-r1.ebuild,
94     +hardened-sources-2.4.32-r2.ebuild:
95     - mark 2.4.32-r1 stable. added 2.4.32-r2 with 2.1.8-grsec patch
96 solar 1.74
97     *hardened-sources-2.6.14-r4 (12 Jan 2006)
98    
99     12 Jan 2006; <solar@gentoo.org> +hardened-sources-2.6.14-r4.ebuild:
100     - version bump for new genpatches which fix up a few sec holes
101 solar 1.73
102     *hardened-sources-2.4.32-r1 (05 Jan 2006)
103    
104     05 Jan 2006; <solar@gentoo.org> +hardened-sources-2.4.32-r1.ebuild:
105     - revision bump to add misc vital linux kernel security patches.
106 johnm 1.72
107     *hardened-sources-2.6.14-r3 (30 Dec 2005)
108    
109     30 Dec 2005; John Mylchreest <johnm@gentoo.org>
110     -hardened-sources-2.6.14-r2.ebuild, +hardened-sources-2.6.14-r3.ebuild:
111     Marking stable, and bumping for sec vuln. Fixes bugs #117171, #117040
112 johnm 1.71
113     28 Dec 2005; John Mylchreest <johnm@gentoo.org>
114     hardened-sources-2.6.14-r2.ebuild:
115     making x86 & amd64 stable following testing.
116 johnm 1.70
117     *hardened-sources-2.6.14-r2 (27 Dec 2005)
118    
119     27 Dec 2005; John Mylchreest <johnm@gentoo.org>
120     -hardened-sources-2.6.14-r1.ebuild, +hardened-sources-2.6.14-r2.ebuild:
121     Fixing bugs 116832 115771 114635, updating grsec, removing selinux/pax
122     network hooks.
123 johnm 1.69
124     06 Dec 2005; John Mylchreest <johnm@gentoo.org>
125     hardened-sources-2.6.14-r1.ebuild:
126     bumping to stable early for sec fix on x86 & amd64
127 johnm 1.68
128     *hardened-sources-2.6.14-r1 (05 Dec 2005)
129    
130     05 Dec 2005; John Mylchreest <johnm@gentoo.org>
131     -hardened-sources-2.6.14.ebuild, +hardened-sources-2.6.14-r1.ebuild:
132     bumping to genpatches 2.6.14-5, security fixup. Also bumping grsec patchset.
133 solar 1.67
134     04 Dec 2005; <solar@gentoo.org> hardened-sources-2.4.32.ebuild:
135     - stable on x86 security bug #114227 CAN-2005-3257
136 kang 1.66
137     *hardened-sources-2.4.32 (19 Nov 2005)
138    
139     19 Nov 2005; Guillaume Destuynder <kang@gentoo.org>
140     +hardened-sources-2.4.32.ebuild:
141     Bump to 2.4.32, includes RSBAC+PaX patchset with a local 'rsbac' keyword.
142     Add the 'rsbac' USE flag in /etc/portage/package.use for hardened-sources to
143     have RSBAC instead of GrSecurity patchset. (echo sys-kernel/hardened-sources
144     rsbac >> /etc/portage/package.use)
145 johnm 1.65
146     *hardened-sources-2.6.14 (14 Nov 2005)
147    
148     14 Nov 2005; John Mylchreest <johnm@gentoo.org>
149     -hardened-sources-2.6.13-r2.ebuild, +hardened-sources-2.6.14.ebuild:
150     Bumping 2.6 series to 2.6.14.2
151 johnm 1.64
152     *hardened-sources-2.6.13-r2 (20 Oct 2005)
153    
154     20 Oct 2005; John Mylchreest <johnm@gentoo.org>
155     -hardened-sources-2.6.13.ebuild, -hardened-sources-2.6.13-r1.ebuild,
156     +hardened-sources-2.6.13-r2.ebuild:
157     Fixes minor build error in ppc.
158 johnm 1.63
159     *hardened-sources-2.6.13-r1 (17 Oct 2005)
160    
161     17 Oct 2005; John Mylchreest <johnm@gentoo.org>
162     +hardened-sources-2.6.13-r1.ebuild:
163     Updating grsec to latest snapshot. Fixes some minor issues. Updating to
164     2.6.13.4, fixes some major amd64 stability problems.
165 johnm 1.62
166     *hardened-sources-2.6.13 (16 Sep 2005)
167    
168     16 Sep 2005; John Mylchreest <johnm@gentoo.org>
169     -hardened-sources-2.6.11-r14.ebuild, +hardened-sources-2.6.13.ebuild:
170     2.6.13.1 with grsec testing patches. Lots of changes, to name a few big
171     ones: inotify now in kernel, RBAC has moved to chained-hash tables so RBAC
172     users should test this thoroughly.
173 solar 1.61
174     01 Jul 2005; <solar@gentoo.org> hardened-sources-2.4.31.ebuild:
175     - stable on x86
176 johnm 1.60
177     *hardened-sources-2.6.11-r15 (27 Jun 2005)
178    
179     27 Jun 2005; John Mylchreest <johnm@gentoo.org>
180     +hardened-sources-2.6.11-r15.ebuild:
181     Fixes CAN-2005-1763, CAN-2005-1265 & CAN-2005-176. Also fixes problem with
182     grsec redefining curr_ip struct.
183 solar 1.59
184     *hardened-sources-2.4.31 (20 Jun 2005)
185    
186     20 Jun 2005; <solar@gentoo.org> +hardened-sources-2.4.31.ebuild:
187     initial import of 2.4.31 tree
188 johnm 1.58
189     *hardened-sources-2.6.11-r14 (14 Jun 2005)
190    
191     14 Jun 2005; John Mylchreest <johnm@gentoo.org>
192     -hardened-sources-2.6.11-r13.ebuild, +hardened-sources-2.6.11-r14.ebuild:
193     Updating inotify, grsec, updating to 11-14 genpatches.base, restructuring
194     naming scheme to abide by genpatches
195 johnm 1.57
196     *hardened-sources-2.6.11-r13 (18 May 2005)
197    
198     18 May 2005; John Mylchreest <johnm@gentoo.org>
199     -hardened-sources-2.6.11-r12.ebuild, +hardened-sources-2.6.11-r13.ebuild:
200     Managed to mangle the Makefile patch from grsec, to miss out the grsec
201     target. sorry about that. Fixes bug #93022
202 johnm 1.56
203     *hardened-sources-2.6.11-r12 (17 May 2005)
204    
205     17 May 2005; John Mylchreest <johnm@gentoo.org>
206     -hardened-sources-2.6.10-r3.ebuild, -hardened-sources-2.6.11-r1.ebuild,
207     +hardened-sources-2.6.11-r12.ebuild:
208     Cleanup older sources. Update to 2.6.11.10 - fixes several sec vulns. Also
209     merges in genpatches-base
210 johnm 1.55
211     *hardened-sources-2.6.11-r12 (17 May 2005)
212    
213     17 May 2005; John Mylchreest <johnm@gentoo.org>
214     -hardened-sources-2.6.10-r3.ebuild, -hardened-sources-2.6.11-r1.ebuild,
215     +hardened-sources-2.6.11-r12.ebuild:
216     Cleanup older sources. Update to 2.6.11.10 - fixes several sec vulns. Also
217     merges in genpatches-base
218 solar 1.54
219     29 Apr 2005; <solar@gentoo.org> -files/2.4.27-CAN-2004-0394.patch,
220     -files/2.4.27-cmdline-race.patch,
221     -files/2.4.28-grsec-2.1.0-pax-mmap-pgtables.patch,
222     -files/2.4.28-grsec-binfmt_a.out.patch,
223     -files/2.4.28-grsec-cmdline-race.patch,
224     -files/2.4.28-selinux-binfmt_a.out.patch,
225     -files/2.4.28-selinux-cmdline-race.patch,
226     -hardened-sources-2.4.28-r5.ebuild, -hardened-sources-2.4.29.ebuild,
227     hardened-sources-2.4.30-r1.ebuild, -hardened-sources-2.4.30.ebuild:
228     - mark .30-r1 stable and remove older vuln ebuilds from the tree. filesdir
229     cleanup..
230 solar 1.53
231     *hardened-sources-2.4.30-r1 (21 Apr 2005)
232    
233     21 Apr 2005; <solar@gentoo.org> +hardened-sources-2.4.30-r1.ebuild:
234     - disable aout by default
235 solar 1.52
236     *hardened-sources-2.4.30 (18 Apr 2005)
237    
238     18 Apr 2005; <solar@gentoo.org> +hardened-sources-2.4.30.ebuild:
239     - 2.4.30 version bump. Adds 4008_CAN-2004-1056 back which was lost in 2.4.29
240     and an optional optimize for size -Os patch with a gcc-3.4 fix for embedded
241     use
242 tocharian 1.50
243 scox 1.51 *hardened-sources-2.4.29 (30 Mar 2005)
244    
245     30 Mar 2005; Andrea Luzzardi <scox@gentoo.org>
246     +hardened-sources-2.4.29.ebuild:
247     New hardened-patches-2.4-29.0 patchball.
248     Removed SELinux support, upgraded GRSecurity to 2.1.4.
249    
250     *hardened-sources-2.4.28-r5 (06 Mar 2005)
251    
252     06 Mar 2005; Andrea Luzzardi <scox@gentoo.org>
253     +hardened-sources-2.4.28-r5.ebuild:
254     Added a fix for a PaX vulnerability.
255    
256     26 Jan 2005; Adam Mondl <tocharian@gentoo.org>
257 tocharian 1.50 hardened-sources-2.4.28-r4.ebuild:
258     Stable on x86
259 solar 1.49
260     23 Jan 2005; <solar@gentoo.org> hardened-sources-2.4.27-r3.ebuild,
261     hardened-sources-2.4.28-r1.ebuild, hardened-sources-2.4.28-r2.ebuild,
262     hardened-sources-2.4.28-r3.ebuild, hardened-sources-2.4.28-r4.ebuild,
263     hardened-sources-2.4.28.ebuild, hardened-sources-2.6.10-r3.ebuild:
264     - fixed/added RDEPEND= in all kernel-2 ebuilds
265 tocharian 1.48
266     *hardened-sources-2.4.28-r4 (21 Jan 2005)
267    
268     21 Jan 2005; Adam Mondl <tocharian@gentoo.org>
269     +hardened-sources-2.4.28-r4.ebuild:
270     Fix vc_resize local DoS, ip_options_get memory leak, and ARP bug in 2.4
271     backport of neighbour hash updates.
272 tocharian 1.47
273     21 Jan 2005; Adam Mondl <tocharian@gentoo.org>
274     hardened-sources-2.4.28-r3.ebuild:
275     Stable on x86
276 tseng 1.46
277     *hardened-sources-2.6.10-r3 (20 Jan 2005)
278    
279     20 Jan 2005; Brandon Hale <tseng@gentoo.org>
280     +hardened-sources-2.6.10-r3.ebuild:
281     Dual commit hardened-(dev-)sources-2.6.10 to here for the upcoming merge
282     in 2005.0
283 tocharian 1.45
284     17 Jan 2005; Adam Mondl <tocharian@gentoo.org>
285     -hardened-sources-2.4.27-r2.ebuild, hardened-sources-2.4.28-r1.ebuild,
286     hardened-sources-2.4.28-r2.ebuild:
287     Mark stable on x86
288 tocharian 1.44
289     *hardened-sources-2.4.28-r3 (17 Jan 2005)
290    
291     17 Jan 2005; Adam Mondl <tocharian@gentoo.org>
292     +hardened-sources-2.4.28-r3.ebuild:
293     Fix SMP page fault handler vuln, and update device-mapper and evms patches.
294 tocharian 1.43
295     14 Jan 2005; Adam Mondl <tocharian@gentoo.org>
296     hardened-sources-2.4.28.ebuild:
297     Mark stable on x86.
298 tocharian 1.42
299     *hardened-sources-2.4.28-r2 (13 Jan 2005)
300    
301     13 Jan 2005; Adam Mondl <tocharian@gentoo.org>
302     +hardened-sources-2.4.28-r2.ebuild:
303     Updates security fixes and adds squashfs 2.1 support. Thanks to Peter S.
304     Mazinger for grsecurity patches as well.
305 plasmaroo 1.41
306     *hardened-sources-2.4.28-r1 (23 Dec 2004)
307    
308     23 Dec 2004; <plasmaroo@gentoo.org> +hardened-sources-2.4.28-r1.ebuild:
309     Security bump. Thank tocharian for rolling a new patchset...
310 solar 1.40
311     28 Nov 2004; <solar@gentoo.org> +files/2.4.28-grsec-binfmt_a.out.patch,
312     +files/2.4.28-grsec-cmdline-race.patch,
313     +files/2.4.28-selinux-binfmt_a.out.patch,
314     +files/2.4.28-selinux-cmdline-race.patch, hardened-sources-2.4.28.ebuild:
315     - Round up remaining security patches that appear to be missing in 2.4.28. -
316     PaX standalone updated to current. hgpv=28.1
317 solar 1.39
318     *hardened-sources-2.4.28 (28 Nov 2004)
319    
320     28 Nov 2004; <solar@gentoo.org> +hardened-sources-2.4.28.ebuild:
321     security bump. Thank tocharian for rolling a new patchset
322 scox 1.31
323 scox 1.38 *hardened-sources-2.4.27-r3 (08 Sep 2004)
324    
325     08 Sep 2004; Andrea Luzzardi <scox@gentoo.org>
326     +hardened-sources-2.4.27-r3.ebuild:
327     Applies the new 2.4-27.2 patchball which updates
328     GRSecurity to the 2.0.1 version.
329    
330 scox 1.37 *hardened-sources-2.4.27-r2 (31 Aug 2004)
331    
332     31 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
333     +hardened-sources-2.4.27-r2.ebuild:
334     Version bump.
335     This version uses the new 2.4-27.1 patchball which updates
336     both the SELinux PaX hooks patch and the SELinux headers.
337    
338 scox 1.36 *hardened-sources-2.4.27-r1 (09 Aug 2004)
339    
340     09 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
341     +hardened-sources-2.4.27-r1.ebuild,
342     -hardened-sources-2.4.27.ebuild,
343     +files/2.4.27-cmdline-race.patch:
344     Version bump, fix for cmdline race. See bug #59905.
345    
346     *hardened-sources-2.4.26-r6 (09 Aug 2004)
347    
348     09 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
349     +hardened-sources-2.4.26-r6.ebuild,
350     -hardened-sources-2.4.26-r5.ebuild,
351     -hardened-sources-2.4.26-r4.ebuild,
352     +files/2.4.26-cmdline-race.patch:
353     Version bump, fix for cmdline race. See bug #59905.
354    
355 scox 1.35 *hardened-sources-2.4.27 (08 Aug 2004)
356    
357     08 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
358     +hardened-sources-2.4.27.ebuild,
359     +files/2.4.27-CAN-2004-0394.patch:
360     Ported the patchball to the 2.4.27 kernel version.
361    
362 scox 1.34 *hardened-sources-2.4.26-r5 (07 Aug 2004)
363    
364     07 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
365     +hardened-sources-2.4.26-r5.ebuild:
366 scox 1.35 Updated to use the new hardened-patches-2.4-26.1 patchball.
367 scox 1.34 It adds the following features:
368     - Squashfs
369     - Ebtables
370     - Netdev random (core+drivers)
371     - Watchdog Timer (WDT) fix.
372    
373 scox 1.33 *hardened-sources-2.4.26-r4 (04 Aug 2004)
374    
375     04 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
376     +hardened-sources-2.4.26-r4.ebuild,
377     +files/2.4.26-CAN-2004-0415.patch,
378     -hardened-sources-2.4.26-3:
379     Version bump, fix for CAN 0415, see bug #59378.
380    
381 scox 1.32 *hardened-sources-2.4.26-r3 (22 Jul 2004)
382    
383     22 Jul 2004; Andrea Luzzardi <scox@gentoo.org>
384     +hardened-sources-2.4.26-r3.ebuild,
385     +files/2.4.26-CAN-2004-0497.patch,
386     -hardened-sources-2.4.26-r2.ebuild:
387     Version bump, fixed CAN 0497, see bug #56171.
388    
389 scox 1.31 *hardened-sources-2.4.26-r2 (29 Jun 2004)
390    
391     29 Jun 2004; Andrea Luzzardi <scox@gentoo.org>
392 scox 1.32 +hardened-sources-2.4.26-r2.ebuild,
393 scox 1.31 +files/2.4.26-CAN-2004-0495.patch,
394     +files/2.4.26-CAN-2004-0535.patch,
395     -hardened-sources-2.4.26-r1.ebuild:
396     Fixes for both CAN 0495 and 0535, see bug #54976
397 pvdabeel 1.27
398 agriffis 1.29 23 Jun 2004; Aron Griffis <agriffis@gentoo.org>
399     hardened-sources-2.4.26-r1.ebuild:
400     QA - fix use invocation
401 scox 1.28
402     *hardened-sources-2.4.26-r1 (22 June 2004)
403    
404     22 June 2004; Andrea Luzzardi <scox@gentoo.org>
405     +hardened-sources-2.4.26-r1.ebuild,
406     +files/2.4.26-CAN-2004-0394.patch,
407     +files/2.4.26-signal-race.patch,
408     -hardened-sources-2.4.26.ebuild,
409     -hardened-sources-2.4.24-r3.ebuild:
410     Version bump for the CAN-2004-0394 issue and bug #53804
411     Marked 2.4.26-r1 as stable, removed 2.4.26 and 2.4.24-r3
412    
413    
414 pvdabeel 1.27 31 May 2004; Pieter Van den Abeele <pvdabeel@gentoo.org>
415     hardened-sources-2.4.24-r3.ebuild, hardened-sources-2.4.26.ebuild:
416     Masked hardened-sources-2.4.26.ebuild broken for ppc
417    
418     31 May 2004; Pieter Van den Abeele <pvdabeel@gentoo.org>
419     hardened-sources-2.4.24-r3.ebuild:
420     Masked hardened-sources-2.4.24-r3.ebuild broken for ppc
421 plasmaroo 1.25
422 scox 1.26 *hardened-sources-2.4.26 (29 May 2004)
423    
424     29 May 2004; Andrea Luzzardi <scox@gentoo.org>
425     +hardened-sources-2.4.26.ebuild:
426     Updated hardened-sources for the 2.4.26 kernel
427     Removed broken components, updated almost everything.
428    
429 plasmaroo 1.25 *hardened-sources-2.4.24-r3 (17 Apr 2004)
430    
431     17 Apr 2004; <plasmaroo@gentoo.org>
432     +files/hardened-sources-2.4.24.CAN-2004-0010.patch,
433     +files/hardened-sources-2.4.24.CAN-2004-0177.patch,
434     +files/hardened-sources-2.4.24.CAN-2004-0178.patch,
435     +hardened-sources-2.4.24-r3.ebuild:
436     Added patches for the CAN-2004-0010, CAN-2004-0177 and CAN-2004-0178
437     vulnerabilities. Old revisions removed.
438 plasmaroo 1.24
439     *hardened-sources-2.4.24-r2 (15 Apr 2004)
440    
441     15 Apr 2004; <plasmaroo@gentoo.org>
442     +files/hardened-sources-2.4.24.CAN-2004-0109.patch,
443     -hardened-sources-2.4.24-r1.ebuild, +hardened-sources-2.4.24-r2.ebuild:
444     Version bump for the CAN-2004-0109 issue; bug #47881.
445 aliz 1.23
446     12 Apr 2004; Daniel Ahlberg <aliz@gentoo.org>
447     hardened-sources-2.4.22-r2.ebuild, hardened-sources-2.4.24-r1.ebuild:
448     Add eutils to inherit.
449 plasmaroo 1.22
450     *hardened-sources-2.4.24-r1 (19 Feb 2004)
451    
452     19 Feb 2004; <plasmaroo@gentoo.org> hardened-sources-2.4.24-r1.ebuild,
453     files/hardened-sources-2.4.24.munmap.patch:
454     Added the patch for the mremap/munmap vulnerability. Bug #42024.
455 scox 1.19
456 scox 1.21 *hardened-sources-2.4.24 (06 Feb 2004)
457 scox 1.26
458 scox 1.21 06 Feb 2004; Andrea Luzzardi <scox@gentoo.org>
459     hardened-sources-2.4.24.ebuild:
460     Version bump, updated most of the components.
461     This release includes the following:
462    
463     - Hardened security
464     - Netfilter patch-o-matic 20031219
465     - FreeSWAN 2.04 & x509 1.4.8
466     - EVMS 2.2.2
467     - XFS 1.3.1
468     - cryptoloop jari
469     - grsecurity 2.0-rc4
470     - SELinux
471     - PaX 200402060000
472     - PaX Obscurity 200308302223
473     - Others...
474    
475     Neither -ck nor systrace are included anymore.
476    
477 scox 1.19 *hardened-sources-2.4.22-r2 (05 Jan 2004)
478    
479     05 Jan 2004; Andrea Luzzardi <scox@gentoo.org>
480     hardened-sources-2.4.22-r2.ebuild:
481 scox 1.20 Version bump for the 'mremap' and the 'rtc' vulnerabilities.
482 scox 1.19
483     *hardened-sources-2.4.22-r1 (02 Dec 2003)
484 iggy 1.17
485     02 Dec 2003; Brian Jackson <iggy@gentoo.org>
486 plasmaroo 1.18 hardened-sources-2.4.22-r1.ebuild: Fix up a little booboo from earlier.
487 iggy 1.16
488     02 Dec 2003; Brian Jackson <iggy@gentoo.org>
489 plasmaroo 1.18 hardened-sources-2.4.22-r1.ebuild:
490     Version bump for the 'do_brk' vulnerability.
491 iggy 1.15
492     01 Dec 2003; Brian Jackson <iggy@gentoo.org>
493     hardened-sources-2.4.20-r2.ebuild, hardened-sources-2.4.20-r3.ebuild,
494     hardened-sources-2.4.20-r4.ebuild, hardened-sources-2.4.21.ebuild,
495     hardened-sources-2.4.22.ebuild, files/do_brk_fix.patch:
496 plasmaroo 1.18 Fix the 'do_brk' vulnerability.
497 frogger 1.14
498     03 Nov 2003; Matthew Rickard <frogger@gentoo.org>
499     hardened-sources-2.4.22.ebuild:
500 plasmaroo 1.18 - Removed the src_install() portion for SELinux flask
501     components. These are no longer handled in the kernel
502     so this code was not necessary.
503 frogger 1.13
504     29 Oct 2003; Matthew Rickard <frogger@gentoo.org> hardened-sources-2.4.22.ebuild:
505     New 2.4.22 based hardened-sources thanks to
506     Phil West <p.west@computer.org>.
507    
508     These sources include:
509 plasmaroo 1.18 - New SELinux API
510     - Updated CK-base
511     - Updated GRSec
512     - Systrace
513     - SuperFreeS/WAN 1.99.8
514     - Propolice kernel build support
515     - EVMS
516     - Other various security related patches
517 frogger 1.11
518 frogger 1.12 *hardened-sources-2.4.21 (14 Sep 2003)
519    
520     14 Sep 2003; Matthew Rickard <frogger@gentoo.org> hardened-sources-2.4.21.ebuild:
521     Updated hardened-sources based on the 2.4.21 Linux kernel.
522     This includes updates to most major components such as:
523 plasmaroo 1.18 - ck-base-0306300059
524     - selinux-2.4-2003071106
525     - grsecurity-2.0-rc1
526     - Updated IPTables patch-o-matic
527     - Updated SuperFreeS/WAN
528    
529 frogger 1.12 Thanks to Phil West <pwest@computer.org> for his work in getting this
530     updated patch set ready for the 2.4.21 based kernel.
531    
532 frogger 1.11 16 Jun 2003; Matthew Rickard <frogger@gentoo.org> :
533     Initial import of hardened-sources-2.4.20-r4. This revision
534     includes only a few changes, but one of these is an important
535     security fix. It is recommended all users of hardened-sources
536     upgrade to this release.
537 plasmaroo 1.18
538 frogger 1.11 - ioperm bug fix
539     - fixed compilation failure when building without GRSec
540 plasmaroo 1.18
541 frogger 1.11 SAL (Secure Auditing for Linux) is NOT included in this revision
542     due to time constraints, but is planned for inclusion in the near
543     future.
544 msterret 1.10
545     *hardened-sources-2.4.20-r2 (12 Jun 2003)
546    
547     12 Jun 2003; <msterret@gentoo.org> hardened-sources-2.4.20-r2.ebuild,
548     hardened-sources-2.4.20-r3.ebuild:
549 plasmaroo 1.18 Add Header...
550 frogger 1.9
551     08 Jun 2003; Matthew Rickard <frogger@gentoo.org>
552     hardened-sources-2.4.20-r3.ebuild:
553     Removed warnings from ebuild. This kernel should be safe to
554     use at this point.
555 frogger 1.8
556     *hardened-sources-2.4.20-r3 (08 Jun 2003)
557    
558     08 Jun 2003; Matthew Rickard <frogger@gentoo.org>
559     hardened-sources-2.4.20-r3.ebuild:
560     New revision. Includes the following changes over -r2:
561 plasmaroo 1.18
562 frogger 1.8 - ck7-base (O(1), preempt, low latency)
563     - Super FreeS/WAN 1.99.7rc2
564     - PaX for the LSM/SELinux branch
565     - GRSecurity 2.0-pre4 (role based access control)
566     - Systrace 1.3
567     - EXT3 fixes
568     - EVMS 2.0.1
569     - GCC 3.1+ compile optimizations
570     - ProPolice kernel build support
571     - Hashing table security fixes
572 frogger 1.3
573     *hardened-sources-2.4.20-r1 (09 Apr 2003)
574 frogger 1.7
575     23 Apr 2003; Matthew Rickard <frogger@gentoo.org> Manifest:
576     Initial import of hardened-sources-r2. This new
577     ebuild includes many new performance and security
578     related patches. As in -r1, it will patch in
579     LSM/SELinux if "selinux" is in USE, otherwise it
580     will patch in GRSecurity. The following patches
581     are included in this revision:
582 plasmaroo 1.18
583 frogger 1.7 - O(1) Scheduler, Low Latency, and Preempt
584     (pulled from the base CK patch)
585     - ptrace exploit patch for the LSM kernel
586     (the GRSec patch already fixes this)
587     - LSM 2.4-2003040709
588     - SELinux 2.4-2003040709
589     - Systrace v1.2
590     - IPTables patch-o-matic base patches - 20030107
591     - CryptoAPI 2.4.20.1 w/ loop-jari patch
592     - Super FreeS/WAN 1.99.6.1
593     - GRSecurity 1.9.9g
594     - MPPE
595     - EXT3 data journal fix
596     - CIPE 1.5.4
597 frogger 1.6
598     12 Apr 2003; Matthew Rickard <frogger@gentoo.org>
599     hardened-sources-2.4.20-r1.ebuild, manifest:
600 plasmaroo 1.18 Updated to install flask components correctly for selinux.
601 frogger 1.5
602     12 Apr 2003; Matthew Rickard <frogger@gentoo.org>
603     hardened-sources-2.4.20-r1.ebuild:
604     LSM/SELinux is now patched in when "selinux" is in USE. Otherwise, GRSecurity
605     is patched in instead. Ptrace patches for selinux have also been added. In
606     either case, systrace support will be patched in as well.
607 frogger 1.3
608     09 Apr 2003; Matthew Rickard <frogger@gentoo.org>
609     hardened-sources-2.4.20-r1.ebuild, hardened-sources-2.4.20.ebuild, manifest:
610 plasmaroo 1.18 Revision bump for new sources.
611 frogger 1.4
612 frogger 1.2 09 Apr 2003; Matthew Rickard <frogger@gentoo.org>
613 frogger 1.4 hardened-sources-2.4.20-r1.ebuild:
614 plasmaroo 1.18 Now includes LSM1, GRSec-2.0-pre1, and systrace-v1.2.
615 method 1.1
616 frogger 1.4 *hardened-sources-2.4.20 (30 Mar 2003)
617    
618 method 1.1 30 Mar 2003; Joshua Brindle <method@gentoo.org>
619     hardened-sources-2.4.20.ebuild:
620 plasmaroo 1.18 Initial import, only has systrace support.

  ViewVC Help
Powered by ViewVC 1.1.20